Technology is providing a powerful enabler of new as-a-Service (aaS) consumption and delivery models. The Subscription economy has evolved and is disr...
Content management error: Header Banners should not be placed in the Navigation placeholder!
Content management error: Generic Content Banners should not be placed in the Navigation placeholder!
January 1, 1983 was the start of TCP/IP on what is now commonly known as the Internet, and some six years later TimBL (Sir Tim Berners-Lee, OM, KBE, FRS, FREng, FRSA, DFBCS and more) and Robert Cailliau (Belgian Order of the King and much more) produced a network protocol (HTTP), a mark-up language (HTML) and a client software for rendering this mark-up language (a Browser) while working at CERN.
This initial implementation was a vast improvement on the accessibility of the digital systems that pre-existed, such as Gopher, or Network News (not the TV Network News you may know, but a primitive distributed forum/bulletin board system).
Similar to those legacy systems, the early web had no real confidentiality when data was transmitted across the untrusted Internet. Any of the network providers that sat in the transmission path between the holder of information, and the requestor could inspect and possibly modify data in flight.
It wasn't until the release of Netscape Navigator in 1994 that a system of offering both negotiated encryption-in-flight, and separately a chain-of-trust identity system were made available. With confidentiality and server identification, vetted by a trusted organisation was the birth of the web as an e-commerce platform.
The choice of offering an encrypted transport protocol for responding to web requests was very much up to the content holder. The web server could listen on one port for unencrypted requests (80), and another service port for encrypted requests (443). Browsers would connect to the secure port and receive an x509 encoded signed Certificate — signed by the trusted Certificate Authority. The server administrator had to obtain this signed Certificate, and for many years this cost significant amounts of money, paid to the Certificate Authority for their role in asserting the identity of the web site operator.
Requiring this paid (at the time) assertion of identity was in effect an obstacle to ubiquitous adoption, a dis-incentive for validating identity; money would typiclaly be spent only on Production systems, and not for non-production, or non-customer-facing systems.
In moving to an encrypted web, historically the client browser would add additional decoration on the screen to show the user that the data being presented was fetched using an encrypted protocol — often using a green padlock – but even this is set to change in 2018.
The details of each of these are fascinating (avoiding the complex mathematics).
While we teach our staff the details, but its worth taking stock of some of the recent changes, as there's a fair number now. If you or your team who manage your Internet facing services are not fully aware of this, then you should urgently contact us to help you.
Content management error: Generic Content Banners should not be placed in the Navigation placeholder!
Content management error: Generic Content Banners should not be placed in the Navigation placeholder!
Content management error: Generic Content Banners should not be placed in the Navigation placeholder!
http://
’ scheme for unencrypted pages, yet at the same time removing the padlock icon and ‘https://
’ scheme for secured communications: effectively turning the tables on ‘security as the exception’, to ‘insecurity as the exception, security as the default’It is clear to see how the Web, the Internet, and our move to digitise the planet has changed society. Our reliance on security, integrity, and privacy over untrusted and sometimes hostile networks is what makes online banking, transactions, information sharing, personal interactions such as video conferencing possible. Many industries have been disrupted by this change; online maps now decimate the printed map market, streaming on-demand video and audio is overtaking broadcast television and radio for minutes watched/listened which, in turn impacts traditional advertising models on broadcast medium. Podcasts, vlogging have turned individuals into celebrities. However, this race to improve security will continue: new algorithms will come, Quantum Computing may upset some of these approaches, but innovation will continue.
For systems administrators and service operators: the biggest risks are to mis-configure the vast array of options before them. Most of the changes have been transitions over time between an older, once great solution, to a newer one that solves more problems, but too many organisations leave legacy options enabled. Freely available tools online help people configure these, such as Mozilla Observatory, and in-browser tooling and logging has also improved.
Outside of the risk of lack of awareness in organisations about actually encryption to meet current best practice, is the lack of real agility to apply critical security changes to production systems as urgently as possible. This is followed closely by the inability to quickly apply known updates — either at the application layer, operating system layers, or network device firmware(s) — despite those security vulnerabilites having been known about for extended periods, and patched versions of these components having been made available by vendors.
Content management error: Generic Content Banners should not be placed in the Navigation placeholder!
The trend is clear: secured web is becoming easier and cheaper, while unencrypted web is becoming less desireable. There are a lot of links to further information in this post; you'll see not one of them is to an unencrypted HTTP site!
Content management error: Generic Content Banners should not be placed in the Navigation placeholder!
Technology is providing a powerful enabler of new as-a-Service (aaS) consumption and delivery models. The Subscription economy has evolved and is disr...
While ‘non-estimators’ expect estimation to be an exact science, there are a large number of easily-made mistakes, that can have a major impact on bot...
It is accepted that productivity in the public sector (and also in the wider economy) has declined over the past 20 years despite a fairly massive inv...